CVE-2007-3491
published 2007-06-29CVE-2007-3491: Buffer overflow in _mprosrv in Progress Software OpenEdge before 9.1E0422, and 10.x before 10.1B01, allows remote attackers to have an unknown impact via a…
PriorityP335high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.52%
82.8th percentile
Buffer overflow in _mprosrv in Progress Software OpenEdge before 9.1E0422, and 10.x before 10.1B01, allows remote attackers to have an unknown impact via a malformed TCP/IP message.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| progress | openedge | — | — |
| progress | openedge | — | — |
| progress | openedge | — | — |
| progress | progress | — | — |
| rsa | ace_server | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-2crp-9jmr-vp26: Buffer overflow in _mprosrv in Progress Software OpenEdge before 9
ghsa_unreviewed·2022-05-01
CVE-2007-3491 [HIGH] GHSA-2crp-9jmr-vp26: Buffer overflow in _mprosrv in Progress Software OpenEdge before 9
Buffer overflow in _mprosrv in Progress Software OpenEdge before 9.1E0422, and 10.x before 10.1B01, allows remote attackers to have an unknown impact via a malformed TCP/IP message.
GHSA
GHSA-p8xw-m97m-vrf2: Heap-based buffer overflow in _mprosrv
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-2417 [HIGH] GHSA-p8xw-m97m-vrf2: Heap-based buffer overflow in _mprosrv
Heap-based buffer overflow in _mprosrv.exe in Progress Software Progress 9.1E and OpenEdge 10.1x, as used by the RSA Authentication Manager 6.0 and 6.1, SecurID Appliance 2.0, ACE/Server 5.2, and possibly other products, allows remote attackers to execute arbitrary code via crafted packets. NOTE: this issue might overlap CVE-2007-3491.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://osvdb.org/37747http://secunia.com/advisories/25865http://securityreason.com/securityalert/2851http://www.psdn.com/library/servlet/KbServlet/download/2629-102-4821/README_101B_01.pdfhttp://www.securityfocus.com/archive/1/472349/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/35104http://osvdb.org/37747http://secunia.com/advisories/25865http://securityreason.com/securityalert/2851http://www.psdn.com/library/servlet/KbServlet/download/2629-102-4821/README_101B_01.pdfhttp://www.securityfocus.com/archive/1/472349/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/35104
2007-06-29
Published